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REMARKS 

In response to the above-identified Office Action, Applicants amend the application and 
seeks reconsideration thereof. In this response, Applicants amend claims 1,11, and 18. 
Applicants do not cancel any claims or add any new claims. Accordingly, claims 1-26 are pending. 

L Claims Rejected Under 35 IJ.S.C, S 103(a) 

Claims 1-9, 11-14, 16, 18-21, 23-24, and 26 stand rejected under 35 U.S.C. § 103(a) as 
being unpatentable over U.S. Patent No. 6,748,539 issued to Lotspiech C^tepi^h") in view of 
U.S. Pie-Grant Patent Application No. 2001/0032088 applied for by Utsumi et al. ("tjtsuim"). 
Applicants respectfully traverse the rejection. 

To establish a prima facie case of obviousness, the Examiner must show the cited 
references, combined, teach or suggest each of the elements of a claim. Amended claim 1 recites 
the element "an encryption subsystem housed in a storage device to encrypt data . . . using an 
encryption bus key prior to Transmitting the encrypted data via a data bus, wherein the 4ft^bus 
connects to a destination in which the encrypted data is to he decrypted and said encryption bus key 
is derived based on [1] a portion of the key distribution data block, [21 a device key assigned to 
said encryption subsystem and [3] the nonce rec eived over the data bus from the number 
generator ." (Emphasis added). Applicants submit that Lotspiech at least does not teach or suggest 
these elements. 

Applicants submit that the communication between Lotspiech 's encryption module with the 
flash memory device (which carries the media ID and the encrypted contents) is not via the data bus 
as claimed. The communication is at most among the processing units within the kiosk. 
Communication links inside the kiosk do not connect to a destination of the encrypted data where 
the encrypted data is to be decrypted. Lotspiech does not disclose any data bus that connects the 
encryption subsystem to a destination in which the encrypted data is to be decrypted. Rather, a 
user of Lotspiech 's system must carry the flash memory from the kiosk (where the content is 
encrypted) to the player (where the content is decrypted). Thus, Lotspiech does not teach or 
suggest cairn or the elements of Claim i. 
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Moreover, Lot^ech's system is vulnerable to the replay attack against which the claimed 
system aims to protect. Applicants note that the Ls^'s media ID (characterized as the nonce) 
is accessible for the entire duration of music rental because the ID is stored in a flash memory 
device (Fig. 1). The media ID is changed only after the flash memory is checked in at a kiosk 
where the music content is erased (col. 5, lines 2J-27). Thus, after the rental music is encrypted 
and stored in the flash memory, a skilled artisan would be able to access the encrypted content, the 
media ID, and the media key block in the flash memory to make an unauthorized copy for replay. 
Storing the encrypted contents with the media ID used for the encryption on the same medium (the 
flash memory) makes it easier for the replay attack described in Applicants' specification at page 6, 
lines 1-9. Anyhostdevicehavingadevicekey would not be able to distingdsh the unauthorized 
copy from a legitimate copy as both copies have the same infonnation required for decryptiou and 
replay. T^piech's system is capable of protecting against replay attacks only after the media ID is 
altered and when the would-be attacker copies the contents back to the flash memory having the 
altered ID for replay (col. 5, lines 28-35). 

In contrast, the claimed system is far superior in protecting against replay attacks. An 
attacker trying to intercept the encrypted data on me data bus would not be able to ascertain the 
nonce from which the encryption bus key is derived. Even if the attacker makes a copy of the 
encrypted content, a host would not be able to decrypt the data without knowing the nonce. Thus, 
Lotspjesh does not teach or suggest each of the elements of claim 1. 

The Examiner relies on Utsumi for disclosing the encryption subsystem housed within a 
storage device. Assuming for the sake of argument Uisumi discloses the storage device as 
claimed, Utsujni does not cure the defect of Lotspiech for failing to teach or suggest an encryption 
module that recei ves a nonce over the data bus and sends the encrypted data over the same data 
bus, wherein the data bus connects to a destination in which the encrypted data is to be decrypted. 
The concept of using anonce received over the data bus is totally absent from J^'s disclosure. 
Thus. Lotspiech in view of TJjsumi does not teach or suggest each of the elements of claim I. 
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Moreover Applicants respectfully submit that there is no motivation to combine these 
reference, y«s directed to a license devolution system in which user contents are transferred 
fromafirst borage medium «, a second storage medium via a drive (Abstract, Figs. 1 and 2). 
T ^piech is ducted to a system for digitized content rental in which contents are transported 
* W e*naldo S kandapla^ 

encryption subsystem may be housed in a storage device, one would not have been motivated* 
combine Lotspiech with » as the two references teaches divergent means of transport 
p^ected contents. Accordingly, this combination could only have been arrived at by hindsight. 
Hindsight is inappropriate as the Examiner is no doubt aware. 

Analogous discussion applies to amended Claims 11 and 18. Accordingly, reconsideration 
and withdrawal of the obviousness rejection of Claims 1. 1 1, and 18 are requested. 

In regard to Claims 2-9, 12-14. 16, 19-21 . 23-24, and 26, these claims depend from 
independent Claims 1, 1 1, and 18 and incorporate the limitations thereof. Thus, at least for the 
reasons mentioned in regard to Claims 1, 1 1 , and 18, these claims are not obvious over L^h 
in view of IJjsurni. Accordingly, reconsideration and withdrawal of the obviousness rejecuon of 
Claims 2-9, 12-14, 16, 19-21, 23-24, and 26 are requested. 

Claims 10, 17, and 22 stand rejected under 35 U.S.C. § 103(a) as being unpatentable over 
T ^spiech in view of Iteni and further in view of U.S. Patent No. 6,751,321 issued to Kato et 
al. ("Kato"). Applicants respectfully traverse this rejection. 

Claims 10, 17, and 22 depend from Claims 2, 14, and 19 and incorporate the limitations 
thereof. Claims 2, 14, and 19 depend from independent Claims 1, 11, and 18 and incorporate the 
Hmitations thereof. Thus, at least for the reasons mentioned above in regard to Claims 1, 11, and 
18, Lojspjsci! and Utsurni do not teach or suggest each of the elements of these claims. Further, 
K^does not cure the defects ofT^ech and U™. Nothing in Kato teaches or suggest* an 
encryption module that receives a nonce over the data bus and sends the encrypted data over the 
same data bus, wherein the data bus connects to a destination in which the encrypted data is to be 
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decrypted. Thus, Lotspiech in view of Utsami and further in view of K&Q does not teach or 
suggest each of the elements of Claims 10, 17, and 22. 

Moreover, Claims 10, 17, and 22 recite the additional element that the number generator is 
a random number generator residing within the decrypting subsystem. From the cited passage at 
col. 5, lines 30-50, a skilled person would understand that each of the encryptor and the decryptor 
is locally coupled to a random number generator. The encryptor does not receive a random number 
from the decryption subsystem via the data bus 105, but rather uses a random number locally 
generated in the transmit device (Fig. 1). Thus, Lotspiech in view of Ifoumj and ftirther in view 
of Kato does not teach or suggest each of the elements of Claims 10, 17, and 22 for this additional 
reason. 

Claims 10, 17, and 22 are also rejected under 35 U.S.C. § 103(a) as being unpatentable 
over Lotspiech in view of Utsumi and further in view of the 1998 ACM article "A Practical Secure 
Physical Bit Generator" authored by Jakobsson et al. ("Jakobsson"). 

Jakobsson also does not cure the defects of Lo^piech and Utsumi. Nothing in Jakobsso n 
teaches or suggests an encryption module that receives a nonce over the data bus and sends the 
encrypted data over the same data bus, wherein the data bus connects to a destination in which the 
encrypted data is to be decrypted, Moreover, Applicants submit that these dependent claims must 
be read together with their respective base claims which provide that the host device decrypts data. 
Jakobsson merely discloses using certain statistics of a computer hard drive (e.g., the access time) 
to derive randomness (Introduction). The Examiner has not identified and Applicants have been 
unable to discern any portion of Jakobsson that mentions data decryption. Thus, there is no 
motivation to combine Jakobsson with the other references because the concept of data protection 
is totally lacking in Jakobsson. Thus, Lotspiech in view of Utsumi and further in view of 
Jakobsson does not teach or suggest each of the elements of Claims 10, 17, and 22 for this 
additional reason. Accordingly, reconsideration and withdrawal of the obviousness rejection of 
Claims 10, 17, and 22 are requested. 
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Claims 15 and 25 standrejected under 35 U.S.C § 103(a) as being unpatentable over 
Laupi^in view of Ursymi and further in view of U.S. Patent Application No. 2002/0015494 
applied for by Nagai, et al. ("Nagai"). Applicants respectfully traverse mis rejection. 

Claims 15 and 25 depend from independent Claims 1 1, and 18 and incorporate the 
limitations thereof. Thus, at least for the reasons mentioned above in regard to Claims 1 1. and 18, 
T^iech and Utsumi do not teach or suggest each of the elements of these claims. Nagai does not 
cure the defects of t ^iech and Uisjnni. The Examiner relies on Nagai for teaching the 
descrambling. However, nothing in Nagai teaches or suggests all the elements recited in Claims 
11 and 18. Thus,Loia»inviewofUto 

suggest each of the elements of Qaims 15 and 25. Accordingly, reconsideration and withdrawal 
of the obviousness rejection of Claims 15 and 25 are requested. 



09/823,423 



11 



42P10855 



PAGE 15/16* RCVD AT 7120/2005 6:30:47 PM (Eastern Daylight Tine] » SVRiUSPTO-EFXRMfl 1 DNIS:8729306 ■ CSH):3108205720 » DURATION (mnws):04.22 



Ju 1-20-2005 03:35pm Fron-BSTZ LA 



3108205720 



T-362 P. 016/016 F-065 



CONCLUSION 

In view of the foregoing, it is believed that all claims now pending, namely Claims 1-26 
patentably define the subject invention over the prior art of record, and are in condition for 
allowance and such action is earnestly solicited at the earliest possible date. If the Examiner 
believes that a telephone conference would be useful in moving the application forward to 
allowance, the Examiner is encouraged to contact the undersigned at (310) 207 3800. 

Respectfully submitted, 

BLAKELY, SOKOLOFF, TAYLOR <fe ZAFMAN LLP 



Dated: 



2005 



Thomas M. Coester, Reg. No, 39,367 



12400 Wilshirc Blvd. 
Seventh Floor 

Los Angeles, California 90025 
(310) 207-3800 
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/ hereby certify thjfpapeh is being facsimile transmitted to the U.S, 
Patented Trademark Vffice dn July 20. 2005. 
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